Re: Sql Injection in wordpress 2.3.1

Wed, 05 Dec 2007 12:07:02 -0800 

Wordpress 2.3.1 converts the 'p' parameter to an integer.


query.php line 449:

$qv['p'] =  (int) $qv['p'];


So there is no exploit possibility.

Reply via email to